search

ansibleguy76 / ansibleforms

A webapplication to create pretty advanced forms to run ansible playbooks or awx templates.
https://ansibleforms.com/
GNU General Public License v3.0
74 stars 12 forks source link

LDAP Authentication does not work #103

Closed Puntjuh closed 1 year ago

Puntjuh commented 1 year ago

Hi,

I've been attempting to configure LDAP with AnsibleForms (version 4.0.16, runs in Debian 11), which runs in Docker but so far no luck. The configuration when tested works, but logging in throws this error message:

2023-10-11 11:45:48:4548 notice: Certificates are valid 2023-10-11 11:45:48:4548 notice: Checking ldap connection ok 2023-10-11 11:46:34:4634 info: Checking password for user admin.dimitri 2023-10-11 11:46:34:4634 info: [ansibleforms] running query : SELECT users.id,username,password,GROUP_CONCAT(groups.name) groups FROM AnsibleForms.users,AnsibleForms.groups WHERE users.group_id=groups.id AND username=?; 2023-10-11 11:46:34:4634 debug: [ansibleforms] query result : [{"id":null,"username":null,"password":null,"groups":null}] 2023-10-11 11:46:34:4634 info: [ansibleforms] running query : SELECT * FROM AnsibleForms.ldap limit 1; 2023-10-11 11:46:34:4634 debug: [ansibleforms] query result : [{"server":"x.x.x.x","port":389,"ignore_certs":1,"enable_tls":0,"cert":"","ca_bundle":"","bind_user_dn":"CN=Ansible Forms,OU=Service Accounts,OU=xxxx,DC=xxx,DC=NL","bind_user_pw":"xxxx","search_base":"OU=Administrators,OU=x,DC=x,DC=NL","username_attribute":"sAMAccountName","enable":1}] 2023-10-11 11:46:34:4634 info: Checking ldap for user admin.dimitri 2023-10-11 11:46:34:4634 error: Error connecting to ldap : user not found or usernameAttribute is wrong

I've tried to enlarge the search base by removing either one or both OU to no avail.

Regards,

Dimitri

ansibleguy76 commented 1 year ago

the “connection test” is not a 100% guarantee. it is a connection test and not a search test. the error “user not found” means the connection works but user can’t be found. you might need permissions on the ou where the users are.

Op wo 11 okt 2023 om 13:53 schreef Puntjuh @.***>

Hi,

I've been attempting to configure LDAP with AnsibleForms, which runs in Docker but so far no luck. The configuration when tested works, but logging in throws this error message:

2023-10-11 11:45:48:4548 notice: Certificates are valid 2023-10-11 11:45:48:4548 notice: Checking ldap connection ok 2023-10-11 11:46:34:4634 info: Checking password for user admin.dimitri 2023-10-11 11:46:34:4634 info: [ansibleforms] running query : SELECT users.id,username,password,GROUP_CONCAT(groups.name) groups FROM AnsibleForms.users,AnsibleForms.groups WHERE users.group_id=groups.id AND username=?; 2023-10-11 11:46:34:4634 debug: [ansibleforms] query result : [{"id":null,"username":null,"password":null,"groups":null}] 2023-10-11 11:46:34:4634 info: [ansibleforms] running query : SELECT * FROM AnsibleForms.ldap limit 1; 2023-10-11 11:46:34:4634 debug: [ansibleforms] query result : [{"server":"x.x.x.x","port":389,"ignore_certs":1,"enable_tls":0,"cert":"","ca_bundle":"","bind_user_dn":"CN=Ansible Forms,OU=Service Accounts,OU=xxxx,DC=xxx,DC=NL","bind_user_pw":"xxxx","search_base":"OU=Administrators,OU=x,DC=x,DC=NL","username_attribute":"sAMAccountName","enable":1}] 2023-10-11 11:46:34:4634 info: Checking ldap for user admin.dimitri 2023-10-11 11:46:34:4634 error: Error connecting to ldap : user not found or usernameAttribute is wrong

I've tried to enlarge the search base by removing either one or both OU to no avail.

Regards,

Dimitri

— Reply to this email directly, view it on GitHub https://github.com/ansibleguy76/ansibleforms/issues/103, or unsubscribe https://github.com/notifications/unsubscribe-auth/AVM6SKSUW27T467R2ZL7XIDX62CE5ANCNFSM6AAAAAA533VNWM . You are receiving this because you are subscribed to this thread.Message ID: @.***>

Puntjuh commented 1 year ago

Thanks, i had a typo, which i've overlooked a 100 times unfortunately. apologies.